Re: AES-128 good enough for medical data?

From: Marc Heusser (marc.heusser_at_CHEERSheusser.comMERCIALSPAMMERS.invalid)
Date: 09/11/03 

Date: Thu, 11 Sep 2003 22:20:44 +0200

In article <VPednQvvdqTyW_2iRTvUrg@speakeasy.net>,
 russotto@grace.speakeasy.net (Matthew Russotto) wrote:

> In article <marc.heusser-5D780B.22230310092003@news.bluewin.ch>,
> Marc Heusser <marc.heusser@CHEERSheusser.comMERCIALSPAMMERS.invalid> wrote:
> >Just wondering:
> >Panther (Mac OSX next release) will offer the option of encrypting home
> >directories with AES-128.
> >Is this deemed good enough for medical data in the US?
>
> I hate to say it, but most medical data is stored unencrypted. I
> think you'll find that the required safeguards are largely procedural
> rather than technological.

Yes, I know - a Swiss hospital just had to learn that its safeguards are
so bad that an officer from the Federal enforcement agency for data
protection could get into the network (wireless of course) from outside
the building, and get to the most sensitive data of patients, and even
got to programming access at live saving machines in the intensive care
station - it could have cost real lives if a malicious war driver had
done it.

Now that does not mean everyone needs to follow the same lousy
procedures and safeguards :-)

Marc 

-- 
Marc Heusser - Zurich, Switzerland
Coaching - Consulting - Counselling - Psychotherapy
http://www.heusser.com
remove the obvious CHEERS and MERCIAL... from the reply address
to reply via e-mail